Hi, i’ve been recieving mails and alerts about “security vulnerabilities” for a while now for one of my projects (pokegraf). I already opened a ticket to GitHub but it’s been 15 days without answer.
The thing is that these are security vulnerabilities for a “package.json” that does not exist, it used to, but it’s gone for a while now. Right now the project is written in C#, and there is no current branch or tag that uses that js file. I already closed the alert, but I don’t want to continue getting emails about future vulnerabilities of something I don’t use.
These incorrect dependencies are even listed in the “Dependency Graph” tab which makes no sense at all.
Any input on this? maybe how to fix the Dependency Graph?
Thank you very much.